424f5a808a
Backport of [NET-1151 NET-11228] security: Add request normalization and header match options to prevent L7 intentions bypass into release/1.20.x ( #21839 )
...
backport of commit 9e7757da16
2024-10-16 16:44:28 +00:00
2300ed5c89
Prepare branch for future patch release ( #21837 )
2024-10-16 15:56:57 +00:00
de188deaff
Manual backport of CE-654 - TLS Encryption docs + CE-713 - Gossip Encryption key rotation ( #21509 ) into release/1.20.x ( #21836 )
...
backport of commit 250b1dece5
2024-10-16 07:50:17 -07:00
824b17a091
Manual backport of docs: Consul DNS views on Kubernetes ( #21802 ) Beta into release/1.20.x ( #21835 )
...
backport of commit 8f78d7cafd
2024-10-16 14:39:14 +00:00
c25549f414
Delete old redundant encryption MDX file ( #21834 )
...
Delete old security/encryption docs file
This file path (`security/encryption.mdx` updated a year ago) is conflicting
with another file path (`security/encrpytion/index.mdx` updated 2 weeks
ago). This is causing the Vercel build to fail since the GitHub runner
cannot distinguish between the file `encryption.mdx` and the path
`encryption/index.mdx`
This one specifically was chosen for deletion due to it last being
updated a year ago vs `encryption/idex.mdx` being updated 2 weeks ago
2024-10-16 10:24:35 -04:00
3d28e33651
Backport of docs: Consul v1.20 release notes into release/1.20.x ( #21832 )
...
* backport of commit 6206dc5dcb859ef87068a3996a73fbe90acfe67bf28872381f59c5b3023e
2024-10-16 07:16:14 -07:00
e6fe73fcfc
Backport of docs: Consul DNS views on Kubernetes into release/1.20.x ( #21828 )
...
backport of commit 55db87054c
2024-10-16 07:13:51 -07:00
c1f9d378cb
Backport of Post-release updates for 1.20.0 into release/1.20.x ( #21830 )
...
Post-release updates for 1.20.0 (#21829 )
* Update active version list in .release/versions.hcl
* Remove nightly tests for 1.17.x
* Add nightly tests for 1.20.x
* Gate nightly tests for 1.19.x to Enterprise only
* Update CHANGELOG.md
Co-authored-by: Nathan Coleman <nathan.coleman@hashicorp.com>
2024-10-15 16:16:49 +00:00
461050d3d5
Backport of ci: ensure int test docker pull goes through proxy into release/1.20.x ( #21824 )
...
backport of commit 7ed1c98d6c
2024-10-14 15:22:32 -04:00
c7a3ca626c
Backport of Add partition field for catalog deregister docs into release/1.20.x ( #21790 )
...
* backport of commit a0b29b0eed64cf21e0d1
2024-10-14 10:57:19 -04:00
9bdd128b65
Backport of Upgrade test improvements for 1.20.x into release/1.20.x ( #21815 )
...
* backport of commit 27179f4b00801bc982bf
2024-10-11 21:39:04 +00:00
bba6be5483
Backport of docs: Add missing `&&` in DNS forwading tutorial into release/1.20.x ( #21809 )
...
backport of commit 3ba99fd382
2024-10-09 17:11:08 -04:00
4b7887ddb7
Backport of Added grafana dashboards into release/1.20.x ( #21811 )
...
Adds grafana dashboards (#21806 )
Co-authored-by: Yasmin Lorin Kaygalak <ykaygala@villanova.edu>
2024-10-09 14:08:03 -04:00
5234d05a99
Backport of update serf links into release/1.20.x ( #21800 )
...
* no-op commit due to failed cherry-picking
* update serf links (#21797 )
* update serf links
* add .markdown file extension
* update serf links to use /blob/master/
* fix broken links
---------
Co-authored-by: github-team-consul-core <github-team-consul-core@hashicorp.com>
---------
Co-authored-by: temp <temp@hashicorp.com>
Co-authored-by: John Murret <john.murret@hashicorp.com>
2024-10-02 23:40:57 +00:00
026bcce400
Backport of [NET-11150] ci: fix conditional skip and add safeguard into release/1.20.x ( #21783 )
...
backport of commit c3db6c9001
2024-09-25 17:34:15 +00:00
af1c0eab2c
Backport of fix spacing of bash scripts into release/1.20.x ( #21769 )
...
* backport of commit 1e97297215b7053f5361a391f2fa3c
2024-09-23 17:51:17 +00:00
1f45e8677d
Backport of security: update alpine base image to 3.20 into release/1.20.x ( #21774 )
...
* backport of commit 4421ce1677#21750 )
---------
Co-authored-by: Michael Zalimeni <michael.zalimeni@hashicorp.com>
Co-authored-by: Sarah Alsmiller <sarah.alsmiller@hashicorp.com>
Co-authored-by: sarahalsmiller <100602640+sarahalsmiller@users.noreply.github.com>
2024-09-19 20:49:56 +00:00
280f6d309c
Backport of Upgrade ubi image to 9.4 into release/1.20.x ( #21773 )
...
* backport of commit 888e302f6e17499dc4dcd933d3727d
2024-09-19 20:40:59 +00:00
63e45110af
Backport of Stage rc release into release/1.20.x ( #21772 )
...
backport of commit d311f2b638
2024-09-19 15:28:23 -05:00
418a32fb0e
Backport of Initialize 1.20 Release into release/1.20.x ( #21753 )
...
* backport of commit a33e903cdf37163dc1a838f0907c7a6ab7ec254b7ac41781865dfebb2cf3316d68cb84
2024-09-17 10:57:17 -05:00
55db87054c
Backport of ci: update the security-scanner gha token into release/1.20.x ( #21754 )
...
backport of commit eb9dbc93f8
2024-09-17 11:51:58 -04:00
17d43c6316
Fix supression ( #21744 )
...
fix supression
2024-09-16 18:43:51 +00:00
5a84cd1abf
Update security-scan.hcl ( #21739 )
2024-09-16 17:42:36 +00:00
ac41822332
ci: fix security-scanner conditional skip ( #21740 )
2024-09-16 13:23:04 -04:00
667eac2ac5
Suppress CVE-2024-8096 ( #21737 )
2024-09-16 16:08:29 +00:00
d315ff1df8
[ui] Pin ansi-html to 0.0.8 ( #21735 )
...
Pin ansi-html to 0.0.8
2024-09-16 11:22:00 -04:00
f924a017b2
[ui] Codemirror resolution pinned in package.json ( #21715 )
...
Codemirror pinned
2024-09-13 20:32:02 +00:00
4efac491e7
[ui] Prettify ember-cli-build ( #21731 )
...
* Missed prettification at a pre-merge step earlier
* Missed lint-removal
2024-09-13 15:30:46 -04:00
c40eecf8f9
security: update alpine base image to 3.20 ( #21729 )
...
* security: update alpine base image to 3.20
* security: update scan config to remove old triage exceptions
2024-09-13 19:02:11 +00:00
de281cbfb7
[ui] codemirror lint removal ( #21726 )
...
* ui: remove json linting dependency
* Remove modes from codemirror change hooks
* Modes and line numbers re-added, linting still removed, old underscore removed
* Changelog added
---------
Co-authored-by: dduzgun-security <deniz.duzgun@hashicorp.com>
2024-09-13 13:59:40 -04:00
30b5ffa281
Hard update all 1.3 dataplane to 1.6 ( #21728 )
...
* hard update all 1.3 dataplane to 1.6
* update 1.5 image
2024-09-13 11:30:25 -05:00
9bab2ed939
[ui] Markdown-it pinned ( #21717 )
...
Markdown-it pinned
2024-09-12 18:15:12 -04:00
8c197db664
add script to generate changelog for a PR ( #21719 )
...
* add script to generate changelog for a PR
* handle enterprise changelogs
* add command to generate changelog
* remove script to handle changelog release
2024-09-12 16:55:35 +00:00
0cc0fa7188
[ui] Simple url sanitization for get-env and document.cookie ( #21711 )
...
Simple url sanitization for get-env and document.cookie
2024-09-12 12:27:22 -04:00
a3ac555a5e
[NET-10952] fix cluster dns lookup family to gracefully handle ipv6 ( #21703 )
...
* update jwks cluster creation to gracefully handle ipv6
* update unit tests for dns lookup family
* Add changelog
2024-09-12 15:37:36 +00:00
320b708b9f
Bump Envoy, remove support for unsupported versions ( #21616 )
...
* bump envoy
* changelog
* drop breaking change note
* update docs
* udpate port tests
2024-09-12 15:32:18 +00:00
1a62917ad1
security: triage vendor alerts ( #21716 )
...
* security: triage vendor alerts
* add wildcard to vendor
2024-09-12 15:08:20 +00:00
35ffb312b0
[ui] Pin a newer version of Braces ( #21710 )
...
Pin a newer version of Braces
2024-09-11 16:24:58 -04:00
07fae7bb0b
[Security] Fix XSS Vulnerability where content-type header wasn't explicitly set ( #21704 )
...
* explicitly add content-type anywhere possible and add middleware to set and warn
* added tests, fixed typo
* clean up unused constants
* changelog
* fix call order in middleware
2024-09-11 14:23:21 -05:00
876a0a7778
Update security-scan.hcl ( #21707 )
2024-09-11 19:21:45 +00:00
7653ffb0a5
security: Upgrade Go to 1.22.7 ( #21705 )
...
* security: Upgrade Go to 1.22.7
* add changelog
2024-09-10 15:07:05 -07:00
8d2178d83d
exclude release branches for 1.15 thru 1.18 ( #21682 )
2024-09-09 11:19:26 -06:00
e4d4435099
Fix the server/client typo in the Agent docs ( #21675 )
2024-09-06 10:01:24 -07:00
3e6f1c1fe1
remove v2 tenancy, catalog, and mesh ( #21592 )
...
* remove v2 tenancy, catalog, and mesh
- Inline the v2tenancy experiment to false
- Inline the resource-apis experiment to false
- Inline the hcp-v2-resource-apis experiment to false
- Remove ACL policy templates and rule language changes related to
workload identities (a v2-only concept) (e.g. identity and
identity_prefix)
- Update the gRPC endpoint used by consul-dataplane to no longer respond
specially for v2
- Remove stray v2 references scattered throughout the DNS v1.5 newer
implementation.
* changelog
* go mod tidy on consul containers
* lint fixes from ENT
---------
Co-authored-by: John Murret <john.murret@hashicorp.com>
2024-09-05 08:50:46 -06:00
188af1ccb0
test: fix Envoy int tests and add container logs ( #21674 )
...
Correctly set the the version of Consul built by the `dev-build` job,
which is then copied into the Consul dev image used in integration
tests.
This was causing failures starting sidecar proxies via `consul connect
envoy` due to a mismatch between the (incorrect) Consul binary's
supported Envoy versions and the (correct) Envoy version under test.
Also add debug log uploads to each int test so we can more easily
diagnose this sort of failure in the future, as it was entirely hidden
in test output.
2024-08-30 16:25:27 -04:00
64683180f3
security(deps): bump aws-sdk-go to v1.55.5 ( #21684 )
...
* security(deps): bump aws-sdk-go to v1.55.5
* add changelog
* edit changelog
2024-08-29 17:04:51 +00:00
c1d0fc938a
Docs CE-709: Remove circular links ( #21685 )
...
Docs CE-70: Remove circular links
Remove links to tutorials that no longer exist and redirect back
to the ACL overview page.
2024-08-29 11:57:32 -05:00
d12f9cf4d1
Set replication metric to 0 when losing leadership ( #20665 )
...
* Set replication metric to 0 when losing leadership
* Fix replication metrics on replication.go also
---------
Co-authored-by: sarahalsmiller <100602640+sarahalsmiller@users.noreply.github.com>
2024-08-29 16:51:44 +00:00
ab794b59f8
update version, changelog, and submodules after 1.19.2, 1.18.4, 1.17.7 and 1.15.14 releases ( #21676 )
...
* update changelog
* Update CHANGELOG.md
* remove duplicate 1.19.1 section
* update version
* update go.mod with most recent modules
2024-08-28 09:39:12 -06:00
f187b92e3a
run integration tests on push in main and release/* ( #21666 )
...
* run integration tests on push in main and release/*
* Update .github/workflows/test-integrations.yml
Co-authored-by: Michael Zalimeni <michael.zalimeni@hashicorp.com>
---------
Co-authored-by: Michael Zalimeni <michael.zalimeni@hashicorp.com>
2024-08-26 20:12:54 +00:00
hc-github-team-consul-core